Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cybercriminals Are Targeting the FIFA World Cup 2026

Lead Analysts: Jeewan Singh Jalal and Louis Tiley KnowBe4 ThreatLabs tracked phishing campaign activity from the first week of April through June 22, 2026 — covering the pre-tournament build-up, tournament kickoff and the first twelve days of live match play. Our latest intelligence adds crucial mid-tournament telemetry (June 15-22), a newly identified reply-back campaign track and additional infrastructure intelligence.

5 Essential Cybersecurity Defenses for Cloud Email Security

Cloud email has become the center of modern business. Regardless of your organization's industry or size, email connects employees, customers, vendors, executives, financial systems and critical business processes. Unfortunately, attackers know this too. For cybercriminals, compromising an email account is often like finding the master key to a building. Once inside, they may be able to steal information, impersonate employees, redirect payments, spread malware or gain access to other systems.

Phishing Exposes Employee Data at 86% of Fortune 100 Companies

A new report from SpyCloud has found that phishing attacks have exposed employee data at 86% of Fortune 100 companies over the past 12 months, with the technology, airline and automotive sectors being hit the hardest. The researchers also found that 78% of organizations experienced an increase in phishing volume over the past year. Additionally, 84% of respondents named AI-assisted phishing as their top concern, followed by business email compromise (BEC) attacks.

Intel Chat: Cisco CUCM exploited, ransomware profiles, Gamaredon & AI agent phishing [335]

Intel Chat with Matt Bromiley and Chris Luft. Matt and Chris break down four stories from the week in threat intel: Chapters: The Cybersecurity Defenders Podcast — a podcast about cybersecurity and the people that keep the internet safe. New episodes drop weekly. Subscribe wherever you listen.

10 Best SPF Checker Tools For Validating Your Email DNS Records

Ensuring robust email authentication is fundamental to protecting your domain name from email spoofing and phishing attacks. Central to this defense is the Sender Policy Framework (SPF), an authentication protocol designed to validate authorized IP addresses allowed to send emails for your domain. To maintain SPF compliance and maximize email deliverability, leveraging the right set of SPF checker tools is crucial. This section highlights the 10 best SPF validation tools that ensure your SPF records in DNS are error-free, up-to-date, and provide effective risk assessment against email-based threats.

Keeping Kiwis safe online: Tackling New Zealand's email security challenges

New Zealanders are feeling the pain of more frequent and effective cyberattacks. While knowing how to avoid attacks is important, it’s not enough to prevent damage. Consumers, businesses and service providers all need to do more to ensure safe email communications. Numbers tell the story.

Physical Mail and the Overlooked Attack Surface

Cybersecurity investment has never been higher. Organisations are running zero trust architectures, deploying endpoint detection across every device, and monitoring network traffic in real time. Physical mail rarely appears on the threat register for most security teams, yet mail-based attack vectors are active and documented, and tend to be effective in part because they attract less scrutiny than digital channels.

ChatGPhish: When AI Assistants Become the Phishing Surface

You can no longer blindly bank on the security boundary you trusted most, and no one is talking about it enough. For years, phishing took a familiar form, such as emails, URLs, and login pages. ChatGPhish breaks that stereotype, though. Permiso Security’s Andi Ahmeti disclosed this technique on 29 May 2026.

What AI Can't Hide When It Writes a Phishing Email

Phishing has always been a game of impersonation. But for decades, the tell was in the details: a misspelled word here, an awkward sentence there, a logo that was just slightly off. Security awareness training built an entire doctrine around those cues. Spot the typo, avoid the trap. That playbook is now obsolete. KnowBe4's latest Phishing Trends Report found that 86% of phishing attacks observed in the last six months involved some level of AI assistance.